This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: z4D5xX9ZcsBJjqL3NzCB8O4lo3jM/dtoWNCIbHZgC7c= Subject key identifier: 37:1B:5E:0F:7C:F9:FE:E5:0B:F0:C3:68:4E:43:42:01:B3:8B:EE:AC Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 0323 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 030C Signing time: Thu 04 Dec 2025 23:38:28 +0000 Manifest this update: Thu 04 Dec 2025 23:38:28 +0000 Manifest next update: Thu 11 Dec 2025 23:38:28 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: OhLA4UVAjSw4z14nw4la6ugfHuYBmNR+C4iMl8pXvGY=) 2: 673C2B68A8BA11F096079D46C4F9AE02.roa (hash: gPhfTgtKlx4wmH5qoiWguK/Xx1pbfFOHbMckJ1VrL+Q=) 3: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: j8sJFdaGh5hoT/OlB8BepmWR8CssCrYtB82PMaTll9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Dec 4 23:38:28 2025 GMT Not After : Dec 11 23:38:28 2025 GMT Subject: CN=69321b74-9a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:1e:74:18:67:0e:ef:4d:8a:d2:12:96:b2: 8b:bf:3c:e9:61:40:66:1e:84:84:7f:82:63:ea:d0: 09:72:3b:04:20:57:4e:91:b0:2e:20:2f:8c:fe:23: d3:f6:27:1f:74:99:24:b6:dd:13:fd:36:c7:aa:35: 8f:fe:c7:74:02:13:56:30:84:48:d8:5f:50:5e:ef: 9c:fe:ff:6d:e5:c7:ab:c8:18:a6:50:f5:dc:1a:15: dd:95:34:84:90:b5:4f:6d:aa:4a:e2:cc:07:d6:b6: 27:7e:d7:d3:60:f7:0d:56:19:80:de:6a:52:e7:5c: 0a:7d:65:3b:0d:ed:4f:08:97:5b:b8:2a:94:df:8e: a5:79:75:cc:ff:da:b8:35:53:41:59:12:43:9b:19: fa:07:9e:7b:5a:46:3e:8e:ee:8a:9c:07:bf:31:d5: c8:28:f1:34:e3:20:7e:0d:c3:8c:9c:39:ab:33:63: e1:88:fa:dc:a5:7a:55:aa:5e:45:90:3d:8e:6d:00: 4d:4e:02:b7:1f:78:6b:41:b9:2d:a5:75:52:17:54: eb:5e:67:e8:c8:eb:2e:91:71:0c:f9:5b:1b:7b:83: ae:ab:4a:75:0c:c4:1c:04:7b:34:d0:86:a8:49:4e: 7d:59:ca:5e:48:2b:55:f7:b3:39:1b:76:74:d0:cd: 2f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1B:5E:0F:7C:F9:FE:E5:0B:F0:C3:68:4E:43:42:01:B3:8B:EE:AC X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:cd:93:6a:15:e7:85:e8:e1:0f:2c:b6:72:9f:1c:ce:b9:46: 42:95:6b:d3:ad:3a:75:17:7a:11:aa:36:89:19:0b:1e:26:aa: 03:90:ce:e6:9f:c3:57:c9:7c:0b:1a:c7:f9:54:d1:80:a1:81: b8:50:83:6f:c6:4b:e1:7e:18:85:72:7e:b8:d5:07:fb:19:b7: 34:9e:92:16:7f:d6:97:b2:74:49:4c:7c:e4:f5:9d:3b:91:53: e2:fd:ea:84:ca:76:c3:f9:2f:05:20:69:40:f7:8c:fb:7b:87: 8f:b0:6b:d7:de:57:69:77:b9:03:de:7a:29:89:22:06:a5:60: 69:a6:ea:89:fb:dd:5d:c7:eb:a6:65:47:e0:f7:2c:e4:1d:e1: 69:64:c5:f6:73:a2:fb:e4:ca:4e:be:f7:a8:35:2a:f9:fb:b8: 2b:75:d1:67:9d:a4:d3:cc:10:6e:2c:f9:b0:af:12:ad:80:a3: 8f:db:0c:40:ec:41:4e:3b:74:6e:5d:c8:31:8e:f6:5d:ed:9a: 2a:bd:15:b3:6b:17:21:df:93:45:04:0f:20:45:4d:08:28:50: 9c:17:2f:42:5f:4e:c7:0e:93:75:88:e1:9f:5e:d3:08:0e:3d: 84:2a:ef:f4:56:ea:ec:a4:01:15:0e:de:a6:8f:a2:a0:35:5c: 17:dc:cd:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUxMjA0MjMzODI4WhcNMjUxMjExMjMzODI4WjAYMRYwFAYD VQQDEw02OTMyMWI3NC05YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSQedBhnDu9NitISlrKLvzzpYUBmHoSEf4Jj6tAJcjsEIFdOkbAuIC+M/iPT 9icfdJkktt0T/TbHqjWP/sd0AhNWMIRI2F9QXu+c/v9t5ceryBimUPXcGhXdlTSE kLVPbapK4swH1rYnftfTYPcNVhmA3mpS51wKfWU7De1PCJdbuCqU346leXXM/9q4 NVNBWRJDmxn6B557WkY+ju6KnAe/MdXIKPE04yB+DcOMnDmrM2PhiPrcpXpVql5F kD2ObQBNTgK3H3hrQbktpXVSF1TrXmfoyOsukXEM+Vsbe4Ouq0p1DMQcBHs00Iao SU59WcpeSCtV97M5G3Z00M0vmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcbXg98 +f7lC/DDaE5DQgGzi+6sMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjzZNqFeeF6OEPLLZynxzOuUZClWvTrTp1F3oRqjaJGQseJqoDkM7m n8NXyXwLGsf5VNGAoYG4UINvxkvhfhiFcn641Qf7Gbc0npIWf9aXsnRJTHzk9Z07 kVPi/eqEynbD+S8FIGlA94z7e4ePsGvX3ldpd7kD3nopiSIGpWBppuqJ+91dx+um ZUfg9yzkHeFpZMX2c6L75MpOvveoNSr5+7grddFnnaTTzBBuLPmwrxKtgKOP2wxA 7EFOO3RuXcgxjvZd7ZoqvRWzaxch35NFBA8gRU0IKFCcFy9CX07HDpN1iOGfXtMI Dj2EKu/0VurspAEVDt6mj6KgNVwX3M3R -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:24 2025 by rpki-client